Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258631 4 警告 オラクル - Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise HCM コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2398 2010-08-6 18:28 2010-07-13 Show GitHub Exploit DB Packet Storm
258632 4.3 警告 オラクル - Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise FSCM コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2380 2010-08-6 18:28 2010-07-13 Show GitHub Exploit DB Packet Storm
258633 5.5 警告 オラクル - Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise PeopleTools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2402 2010-08-6 18:28 2010-07-13 Show GitHub Exploit DB Packet Storm
258634 5.5 警告 オラクル - Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise HCM - eProfile Mgr コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2401 2010-08-6 18:28 2010-07-13 Show GitHub Exploit DB Packet Storm
258635 1.9 注意 オラクル - Oracle Supply Chain Products Suite の Oracle Transportation Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2371 2010-08-6 18:27 2010-07-13 Show GitHub Exploit DB Packet Storm
258636 4.3 警告 オラクル - Oracle Supply Chain Products Suite の Oracle Transportation Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2372 2010-08-6 18:27 2010-07-13 Show GitHub Exploit DB Packet Storm
258637 10 危険 アップル
サイバートラスト株式会社
サン・マイクロシステムズ
レッドハット		 - 複数の Oracle 製品 の New Java Plug-in コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0887 2010-08-5 17:16 2010-04-15 Show GitHub Exploit DB Packet Storm
258638 2.6 注意 オラクル - Oracle E-Business Suite の Oracle Knowledge Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0836 2010-08-5 16:36 2010-07-13 Show GitHub Exploit DB Packet Storm
258639 3.5 注意 オラクル - Oracle E-Business Suite の Oracle Applications Framework コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0909 2010-08-5 16:35 2010-07-13 Show GitHub Exploit DB Packet Storm
258640 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Applications Manager コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0913 2010-08-5 16:35 2010-07-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246501 6.1 MEDIUM
Network 		yiqicms_project yiqicms An issue was discovered in yiqicms through 2016-11-20. There is stored XSS in comment.php because a length limit can be bypassed. CWE-79
Cross-site Scripting 		CVE-2018-17077 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm
246502 8.8 HIGH
Network 		logological general-purpose_preprocessor GPP through 2.25 will try to use more memory space than is available on the stack, leading to a segmentation fault or possibly unspecified other impact via a crafted file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-17076 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm
246503 7.5 HIGH
Network 		golang
fedoraproject 		net
fedora 		The html package (aka x/net/html) before 2018-07-13 in Go mishandles "in frameset" insertion mode, leading to a "panic: runtime error" for html.Parse of <template><object>, <template><applet>, or <te… CWE-476
 NULL Pointer Dereference 		CVE-2018-17075 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm
246504 6.1 MEDIUM
Network 		feed_statistics_project feed_statistics The Feed Statistics plugin before 4.0 for WordPress has an Open Redirect via the feed-stats-url parameter. CWE-601
Open Redirect 		CVE-2018-17074 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm
246505 7.5 HIGH
Network 		bitmap_project bitmap wernsey/bitmap before 2018-08-18 allows a NULL pointer dereference via a 4-bit image. CWE-476
 NULL Pointer Dereference 		CVE-2018-17073 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm
246506 9.8 CRITICAL
Network 		json\+\+_project json\+\+ JSON++ through 2016-06-15 has a buffer over-read in yyparse() in json.y. CWE-125
Out-of-bounds Read 		CVE-2018-17072 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm
246507 6.5 MEDIUM
Network 		unlcms unlcms An issue was discovered in UNL-CMS 7.59. A CSRF attack can update the website settings via ?q=admin%2Fconfig%2Fsystem%2Fsite-information&render=overlay&render=overlay. CWE-352
 Origin Validation Error 		CVE-2018-17070 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm
246508 6.5 MEDIUM
Network 		unlcms unlcms An issue was discovered in UNL-CMS 7.59. A CSRF attack can create new content via ?q=node%2Fadd%2Farticle&render=overlay&render=overlay. CWE-352
 Origin Validation Error 		CVE-2018-17069 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm
246509 9.8 CRITICAL
Network 		dlink dir-816_a2_firmware An issue was discovered on D-Link DIR-816 A2 1.10 B05 devices. An HTTP request parameter is used in command string construction in the handler function of the /goform/Diagnosis route. This could lead… CWE-78
OS Command  		CVE-2018-17068 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm
246510 9.8 CRITICAL
Network 		dlink dir-816_a2_firmware An issue was discovered on D-Link DIR-816 A2 1.10 B05 devices. A very long password to /goform/formLogin could lead to a stack-based buffer overflow and overwrite the return address. CWE-787
 Out-of-bounds Write 		CVE-2018-17067 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm